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ABSTRACT 


This thesis effort examines applying local area network 
(LAN) technology to the Air Force. Long haul nets such as 
the Automatic Digital Network (AUTODIN) and Defense Data 
Network (DDN) are vital elements of command and control (C2) 
for the Air Force, but this functionality has not yet been 
extended to cover base level C2 requirements. The principal 
elements of this study concern the need for LANs on Air 
Force bases, the best local area network design for Air 
Force bases, and a local area network implementation 
strategy. 

LANs have the additional advantage of being able to 
provide information sharing between microcomputers that use 
different operating systems. Three interconnection 
scenarios are described and potential solutions for each one 
are presented, with the author’s recommendation for the best 
solution in each case. These solutions build the case for 
Air Force local area network standards: a broadband 
backbone connecting a variety of networks designed to 


Support a variety of users. 
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te  soeRe DUCTION 


A. GENERAL 

A local area network (LAN) provides the transmission 
media and intelligence to connect a variety of user devices. 
A LAN uses protocols to send and receive information 
between a variety of user devices. The protocols provide 
the intelligence through a structured way of handling the 
data and the means for connection (1.e. wire) is the 
transmission medium. A user device can be anything from a 
mainframe computer to a dot matrix printer. 

The recent merger of the communications (30XX) and data 
automation (51XX) career fields into the information systems 
(49XX) Air Force specialty code aptly demonstrates the 
blurring of the lines between automatic data processing 
(ADP) and communications-electronics (C-E). The rapid 
development and use of local area networks in both business 
and the military further reduces the distinction between the 
two disciplines. 

The increased use of personal computers, work stations, 
and word processing equipment in the Air Force office envir- 
onment coupled with long experience with the convenience of 
the Defense Communications Agency’s long haul networks for 


Pmectronic transfer of information has led to user 


dissatisfaction with “air-gap" connectivity in the local 
environment. 

Uncent roles and uncoordinated automation of functions 
has led to a proliferation of terminals hardwired to a 
Single mainframe computer. If systems need to share data, 
the data is often printed out from one terminal and manually 
entered into another system using the other system’s 
terminal. This "air-gap" technology defeats the purpose of 
automation--to increase productivity. The maintenance 
control center at Spangdahlem Air Base is an example of 
automation gone wild. [Ref. 1] Several inventory functions 
(1.e. weapons, fuel, transportation, flight line, supply) 
were automated and a terminal for each placed in the main- 
tenance control center. The proliferation of computers (and 
therefore databases) is the result of two requirements: 
having the mainframe near the work area and providing 
redundancy. If information available in the supply database 
is needed to update a record in the fuel database, it is 
printed out or sent to the screen of the supply system 
terminal where it 1s read and retyped on the fuel system 
terminal. Because of this, the databases do not always 
provide accurate information. If the database is shared, 
then all involved organizations can make decisions based on 


current, accurate information. 


BemeObIECGT OF RESEARCH 

The purpose of this research is to outline a strategy 
bor fan Beara multi-purpose local area network design 
suitable for a variety of Air Force applications. Once the 
technology is implemented, support for automation of 
functions such as inventory control will be part of the 
overall information systems plan for a particular location. 
Several LAN designs will be discussed to show how local 
network technology can solve the "air-gap" problem. The 


primary applications required are file transfer, database 


sharing, and electronic mail. 


C. RESEARCH QUESTIONS 

The primary question considered in this research is, 
"Can a single LAN design satisfy Air Force users?" The 
design variables are cost, size of network (distance and 
number of users), and reliability. This focus emphasizes 
the unique aspects of Air Force base level operations. A 
corporate headquarters or industrial complex might be as 
large as an Air Force base, but the corporation has central- 
ized control over the devices to be connected by a local 
area network through total control of the budget and 
acquisition process, whereas Department of Defense agencies 
have to justify annual budgets to Congress, deal with 
changing acquisition regulations, and do not have consol- 


idated control of acquisitions, even at the base level. 


There is also intense competition between Air Force major 


commands (MAJCOMs) for available funds. 


De SCOPE, LIMITATIONS, AND ASSUMPTIONS 

This thesis is motivated by the three year search for 
Standards for an Air Force LAN. The scope of this thesis is 
limited to fixed base information transfer requirements, and 
does not include mobile tactical systems. However, most 
mobile systems could probably connect through a Defense Data 
Network (DDN) terminal access controller (TAC). 

The primary limitation of this thesis is that security 
considerations will not be addressed. Many users have 
Classified information transfer requirements which must be 
addressed for local networks. An additional security risk 
is encountered when previously separate and unclassified 
databases become connected to the same network providing 
correlations that in aggregate become classified. The 
Security issue may be the subject of another thesis. 

Another limitation is the omission of a discussion on 
private automatic branch exchanges (PABXs) serving as LANs. 
Some information transfer requirements can be totally 
Satisfied by the data transfer ability of the latest elec- 
tronic switching systems. The sole use of PABXs was not 
included in order to limit the scope of this thesis. 

The primary assumptions of this thesis center around the 


Air Staff mandated protocols for data communications and the 


10 


International Standards Organization (ISO) Open System 
Interconnection (OSI) model. It assumes the protocols 
Mechitied in HQ USAF/SIT 012200Z Sep 84 message, "Policy and 
Guidelines on Data Communications Protocols," will be used. 
(See Appendix B.) This message was sent out for two 
reasons: to provide interim local area network standards 
until the Unified Local Area Network Architecture (ULANA) 
was ready, and to slow down the acquisition of non-standard 
local networks within the Air Force. At the time the 
message was sent, the demand for local area networks within 
the Air Force was so high, it appeared that many users would 
have some kind of network before the Air Force had any 
standards. Because of the importance Air Staff placed on 
LAN standards, this message mandated the use of MIL-STD 
protocols 1771 through 1789 in an effort to provide 
standards for near term and ongoing acquisitions. 

Resistance to the implementation of the mandated Trans- 
mission Control Protocol (TCP, MIL-STD-1778) and Internet 
Protocol (IP, MIL-STD-1777) at the network interface unit 
(NIU), instead of at the network boundary, has been high for 
two reasons: the increased cost of NIUs and the fact that 
TCP/IP are not international standards. Modifications to 
the ISO OSI model have been proposed, but will not be 
considered here. Examination of either assumption could be 


mMembaAsisS Of further research. 


i. 


E. METHODOLOGY 


The basic methodology used in this thesis is one of 


evaluation. In particular, the available local area network 


topologies, transmission media, media access methods, and 
their applicability to Air Force bases, or installations, 


will be examined. 


oe SUMMARY 

Although local area network technology is here today, 
the Air Force has not yet approved a set of comprehensive 
standards. The lack of standards in local network acqui- 
sition leads to noninteroperability in the operational 
environment. The Air Force iS waiting for development of 
industry standards that support its security and rapid 
reconfiguration requirements. 


The security aspect has already been discussed and the 


reconfiguration problem is addressed in the network manage- 


ment portion of this thesis. If industry standards are 
used, then the Air Force (and Department of Defense) will 


not have to fund the research and development of the 


components that support those standards. The increased use 


of requirements contracts for industry (not Department of 
Defense) standard ADP and communications products will 


Support use of an industry standard local area network. 
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II. LOCAL AREA NETWORK OVERVIEW 


A. WHAT IS A LAN? 

According to the Unified Local Area Network Architecture 
(ULANA) A-level specification (10 Oct 85), 

The ULANA program will provide the standard hardware and 
software products necessary for intra-base information 
flow among end-user devices, dedicated systems, shared 
systems, and gateways to other information transfer 
systems. [Ref. 2] 

This specification was written for the Air Force Local 
Area Network Systems Program Office (AFLANSPO) at the Air 
Force System Command (AFSC) Electronic Systems Division 
(ESD). The AFLANSPO was chartered to develop standards for 
an Air Force local area network. 

A definition from outside the Department of Defense 


follows: 


A local area network is a communications facility that 
covers a limited topology and interconnects in an 
effective manner different types of servers and work- 
stations, more particularly personal and professional 
computers. In width it varies from 100m to nearly 10km 
depending on the architecture. [Ref. 3] 

Commonality in the above definitions is found in the 
terms "information flow" and "communications." Another 
point of agreement is found in the phrases "hardware and 
software products necessary" and "interconnects in an 
effective manner." Therefore, a LAN should provide the 


intelligence to connect heterogeneous devices; it is a smart 


transmission path. The ability to connect and support 


is3 


communications between heterogeneous devices is crucial to 
the Air Force. Until the recent standardization of Depart- 
ment of Defense computer acquisition, there was no way to 
control the types of computers being purchased within the 
Air Force (or the Department of Defense as a whole); there 
are now diverse types of endpoint objects (EPOs) in the Air 
Force inventory. Many of these EPOs require connectivity to 
other EPOs for data and resource sharing. The services and 


types of connectivity supported will be discussed in section 


Pie. 


B. TYPES OF LANS (TOPOLOGY) 

The basic topological types of local nets are star, 
ring, bus, tree, and mesh. (See Figure 1, Table 1.) For 
LANs, the terms topology and architecture are 
interchangeable. 

The star LAN has a central processor connected 
point-to-point with every endpoint object on the network. 
This type of network can be economically installed in 
buildings that have available data grade twisted pair 
telephone wire. Depending on the type of central processor, 
the network may be able to stay on-line when new users are 
added. However, the central processor can be a single point 
Of et aatiiiae: 

The devices of the ring, or loop, local network are 


connected in a closed circle along the transmission medium. 
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Figure 1 LAN Topologies 
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The ring is easy for the user to implement in a small office 
environment. Use of parallel (or dual) rings for connection 
ona ee system allows for fault detection and allows new 
users to be added without disrupting service to the other 
users. For single ring nets, failure of a single device can 
result in total failure of the network and the network must 
be brought down to add a new user. 

The bus network consists of devices joined to a linear 
strip of transmission medium. The bus can support single or 
multiple channel operations. This configuration is more 
flexible and less vulnerable than the star or ring. Failure 
of a single device will not cause failure of the entire 
network and the network does not have to be reconfigured 
when new devices are added. If extra turnaround frequency 
translation points (headends) are provided, a break in the 
transmission path will segment, but not bring down, the 
network. However, a single break in the transmission path 
may cause network failure if certain design precautions are 


not taken (i1.e., use of redundant headends). 


J 
The tree is a variation of the bus architecture where 
the main transmission path is split into branches. There is 

only one route between any two devices. This topology 
avoids the problem of a single break in the path causing 


network failure. However, a break would isolate portions of 


the network. 


ay 


The mesh architecture provides multiple routes between 
any two endpoint objects. It is therefore a highly reliable 
and fle bile topology. The drawback is the complex routing 
and flow control required. Although widely used in 
long-haul communications, the cost and complexity can be 


prohibitive in most local network environments. 


Cc; COMPONENTS OF A LAN 

There are three major components of a local area 
network: the transmission medium, the interface units, and 
a network management system. 

1. Transmission Medium 

The transmission medium is the physical matter the 
communications signals from one device must flow through to 
get to another device. The main categories for LAN trans- 
mission media are twisted pair copper wire, coaxial cable, 
and optical fiber. (See Table 2.). 

Twisted pair, or multiple pair twisted copper wire, 
is the simplest and least expensive transmission medium 
(cable). Most telephone systems use this type of cable. 
Twisted pair can be used with any topology, but it has the 
following drawbacks: it is highly susceptible to external 
noise interference, data rates decrease as the distance 
increases, and the error rate increases as the data rate 
increases. The vulnerability to external noise is largely 


from the inexpensive wrapping on the wire. The maximum 
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distance for twisted-pair local area networks is generally 
three kilometers (3km) and the maximum data rate is one 
Million bits per second (Mbps). A 200-pair cable suitable 
for outside use will cost about $4.50 a meter. 


The finite limits of a transmission path are 


explained by Shannon’s Law, one of the fundamental laws of 


communications: 
C = W log,(1 + S/N) 
where C = maximum capacity in bits/second (bps) 
W = bandwidth 
S/N = ratio of signal power (S) to noise power (N) 


This law demonstrates that the limiting factors on transmis- 
Sion capacity are bandwidth, signal power, and noise. As 
distance increases, signal power decreases, so the transmis- 
Sion capacity will decrease. For a constant bandwidth and 
constant path length, to increase the data rate, the signal 
must be compressed. This compression provides less informa- 
tion about the signal and makes signal detection less 
tolerant of error causing conditions, thus increasing the 
overall error rate. 

The use of coaxial cable allows for greater band- 
width and therefore the capacity for a higher data rate than 
twisted pair. Because of its shielding, coaxial cable is 
also more resistant to external noise than twisted pair. 
There are two main types of coaxial cable: baseband and 
broadband. Most cable television companies use broadband 


coaxial cable. Although baseband and broadband are 
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physically similar, they are operationally very different. 
Baseband systems can only carry one signal at a time and 
only in Sees eee mode (one direction at a time). Base- 
band supports only digital signals and uses repeaters to 
maintain signal levels. Maximum distances for baseband nets 
are 10km with a maximum data rate of 10Mbps. A baseband 
cable plant can only be tapped at certain intervals (based 
on wavelength). The major advantages are the ease of 
installation and maintenance. Xerox’s Ethernet is a base- 
band LAN. Ethernet coaxial cable costs about three dollars 
eemeter. 

Unlike baseband, broadband cable can support voice 
and real-time full-motion video, as well as data applica- 
tions. Use of frequency division multiplexing (FDM) allows 
broadband to carry more than one signal at a time by split- 
ting the bandwidth into different channels. Transmission is 
normally half-duplex; full-duplex can be provided by using 
two channels. As broadband cable transmits only analog sig- 
nals, radio frequency modems are needed to modulate and 
demodulate the digital signals. Instead of repeaters, 
broadband uses amplifiers to maintain signal levels. Use of 
amplifiers and channelization allows broadband to transmit 
over greater distances and support more devices than a 
baseband system. However, broadband cable is more difficult 


to install and tap than baseband cable. Baseband cable is 
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generally marked where a tap can be made, whereas broadband 
cable taps depend on the size of the system and the vendor. 

Broadband local networks can use either single or 
dual cable systems. In dual cable systems, signals are 
transmitted on one cable and received on the other. The 
cables are joined at a headend to form an open-ended loop. 
The head-end transfers signals from one cable to the other. 
In single cable systems, different frequency bands are used 
for inbound and outbound signals. The headend performs 
frequency conversion to change inbound signals to outbound 
Signals. If inbound and outbound bandwidths are equal, the 
system is termed mid-split. A sub-split occurs when the 
outbound bandwidth is greater than the inbound bandwidth. 
Cable costs for single cable broadband are half that for 
dual systems, but the bandwidth, and consequently the 
potential data handling capacity, is also halved. The 
installation cost, however, is only slightly higher for dual 
systems; since cable installation costs are usually eighty 
percent of the total cost, the cost per channel favors the 
dual cable system. Broadband systems usually support 
distances up to 50km at 5Mbps per channel. Broadband coax 
is about seven dollars a meter for half-inch diameter and 
ten dollars for three-quarter-inch cable. 

Although use of optical fiber for local transmission 
is new, it has characteristics that may make it the best 


local transmission medium in the foreseeable future. Fiber 
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is small, lightweight, durable, possesses a greater band- 
width (gigahertz versus megahertz) than other media, and can 
transmit voice, video, and data. Optical fiber does not 
require repeaters or amplifiers for local transmission pur- 
poses, is not affected by electrical interference, and has 
emanation characteristics that make it more secure than 
other media. Transmission rates are limited only by current 
Photonic technology. For®a 50/125 (core/cladding) micron 
cable with twelve fibers the cost is twelve dollars per 
meter ($1/fiber/meter); a cable with thirty fibers would 
cost about twenty dollars per meter. Fiber can be used for 
either baseband or broadband systems. However, the 
installation and repair of optical fiber requires highly 
skilled personnel. Fiber is currently the most expensive 
local transmission media, primarily due to the high cost of 
electro-optical converters and photonic wave division multi- 
plexers (WDM). The converters transform signals transmitted 
over copper wire into light pulses that can be transmitted 
over optical fiber, and vice versa. The multiplexers com- 
bine several wavelengths, each capable of carrying a 
different signal into a single signal carried over the 
fiber; the process is reversed at the distant end. 
2. Network Interface Units (NIUs) 

The interface units physically connect local area 

network user devices to the local area network transmission 


medium and contain protocols and other software/firmware, 
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not already contained within the user devices, for 
Supporting services on the net (such as file transfer, 
resource shavinee and protocol conversion). The flow of 
packets is buffered and managed within the interface units 
so connected devices can transfer data simultaneously and 
full duplex at required speeds. NIUs may be self-contained 
units or may partially reside in the backplane of the 
supported endpoint object. The self-contained units can 
have ports to support from one to thirty-two EPOs. 

There are three main types of NIUs: terminal, 
bridge, and gateway. A terminal NIU is used to connect 
devices like dumb terminals, microcomputers, and peripherals 
(printers, storage devices) to a local area network. A 
bridge NIU connects two similar nets. It may connect two 
baseband networks, two channels on a broadband net, or two 
broadband local networks. A gateway NIU connects dissimilar 
networks. Gateways provide connection between a local area 
network and a long haul network, such as the Defense Data 
Network (DDN), or between two LANs. A gateway is generally 
used when transmitting outside a local address group. 

3. Network Management System (NMS) 

A network management system provides the means to 
manage the realtime operation, control, and analysis of a 
local area network. The following functions are supported: 
initialization and configuration of network resources; 


controlling access to the network; monitoring performance 


24 


and operational data; fault detection, isolation, and 
correction; and managing the security functions of the 


network. 


| LAN MEDIA ACCESS METHODS 

The media access method controls network traffic by 
determining when and how a user device communicates with 
other devices. The topology can also affect the choice of 
media access control method. The primary access methods are 
token passing and carrier sense multiple access with colli- 
Sion detection (CSMA/CD). In token passing, a control token 
is passed around among users; the device with the token is 
the only one that can transmit. Sometimes a slot of time, 
instead of a token, is passed. Token passing is required 
for ring topologies and is logical with the star topology. 

With CSMA/CD, a device waiting to transmit listens to 
the channel before transmitting. If another device is 
transmitting, the one waiting will sense the carrier and 
wait until the channel is clear. If two transmit at the 
same time, collision detection stops the transmissions. 
Each device will wait a random time before attempting to 
retransmit. CSMA/CD is often used with bus (and related) 
topologies. 

CSMA/CD works best when devices exchange lengthy 
messages, as this provides the best normalized propagation 


delay. Normalized propagation delay is the ratio of the 
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time a packet takes to travel through the network to the 
time necessary to transmit a packet. A ratio of one or less 
is optimal. As the cable length increases, propagation time 
and, therefore, normalized propagation delay also increase. 
The signaling rate is also a factor; as Signaling rate 


increases, the packet transmission time decreases increasing 


the normalized propagation delay. 


E. THE INTERNATIONAL STANDARDS ORGANIZATION OPEN SYSTEM 

INTERCONNECE TONS MERE 

The International Standards Organization (ISO) Open Sys- 
tem Interconnection (OSI) model is a seven-layer protocol 
reference model. (See Figure 2.) The levels are physical, 
link, network, transport, session, presentation, and 
application, numbered one through seven respectively. It is 
important to note the components of a local area network 
only support levels one through four. A brief description 
of all seven layers follows. 

The physical layer defines the physical characteristics 
required to interface to the transmission medium. It 
Specifies the hardware interface. The Electronics 
Industries Association (EIA) RS-232C interface is one of the 
most common physical interfaces today. 

Link layer protocols establish a data link across the 
transmission medium, initialize and control data flow across 


the link, and terminate the link upon completion of data 
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transfer. Error detection and correction are supported in 
the link layer. High-level data link control (HDLC) is a 
link layer protocol. 


Network connections are established and released Wines 


network layer. Data packet structure, format, sequencing, 
and routing are also controlled in this level. The DDN X.25 
protocol is a common network protocol. The Department of 


Defense Internet Protocol (IP) 1S another network protocol. 
Layer four ensures data integrity between hosts. It 
acts as a buffer between levels one through three (communi- 
cations protocols) and five through seven (data processing 

protocols). Transport Control Proetecol (Ter lca ere 
Department of Defense mandated protocol for the transport 
level. 

The session layer establishes and controls connections 
between processes on hosts after the transport layer has 
established the connection between the hosts. 

The presentation layer performs code conversions, 
compresses text, and encrypts data preparatory to data 
transfer. 

User selection of network services 1S supported at the 
application level. 

Local networks include the physical, link, network, and 
transport protocols. Each layer is affected by the layers 
above and below it. The protocols for layers five through 


seven must support the services the user needs and the LAN 
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protocols must support the upper level protocols. A poorly 
selected transport layer can cause the most problems for the 


user. 


le SUMMARY 

This section defined a LAN and discussed the capabil- 
ities and limitations of its component parts: transmission 
media, network interface units, and network management 
system. Local network topologies and media access methods 
were also addressed. A description of the seven layer 
International Standards Organization Open System 
Interconnection model was provided. Local area networks, as 
defined herein, are composed of the first four layers of the 
model: physical, link, network, and transport. The top 
layers--session, presentation, and application-~and the 
endpoint objects are application-dependent and are, there- 


fore, the responsibility of the user. 


a9 


TII. AIR FORCE OPERATIONAL REOUITLREMENZTS 


A. WHAT DOES A LAN REPLACE? 

If all users agreed on the definition of a local area 
network, they might all agree on what a local area network 
replaces. Some feel the base telecommunications center 
(TCC) would be replaced by a local network. This is 
inaccurate; TCC operations would be enhanced by a LAN. For 
the message handling environment, the local area network 
replaces the base information transfer service (BITS). BITS 
1s made up of personnel and vehicles, on a base, delivering 
in hours (or days) paper copies of messages that can be 
transmitted worldwide in minutes. A properly implemented 
network would make the printing out and hand-carrying of 
those messages unnecessary. The messages could be processed 
and forwarded electronically to the intended recipient. 

LANS also speed up some processes. A staff coordination 
cycle currently consists of an action officer preparing a 
draft (hopefully on a PC), and hand-carrying it or sending 
it through distribution for concurrence/approval. If 
changes are needed, it will be sent back with recommended 
changes written on the draft. The coordination process can 
easily be twice as long as the creative process. With the 
electronic connection provided by a local area network, the 


draft could be "shotgunned" (sent to many offices at once) 
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for coordination. All the comments could then be incor- 
porated at one time and the draft could be shotgunned again. 
Besides uit time for everyone involved in the process, 
electronic coordination would save resources (paper and 
mink). 

A local area network cannot replace anything, however, 
if potential users have social and psychological barriers to 
computers and electronic transmission of information. Some 
people feel better with a notebook, filing cabinets, and 
libraries than with a keyboard, a box of computer disks, and 


a modem. Fortunately, education can remove the barriers and 


retirement will remove those who cannot overcome them. 


B. WHAT ADDITIONAL SERVICES WILL A LAN SUPPORT? 

A broadband system can do more than provide data 
connectivity between computers. Video capabilities of 
broadband cable, as demonstrated by the cable television 
industry, are well known. Both analog and digital voice 
transmission can be supported on a broadband system. The 
same cable that supports data, voice, and video can provide 
channels for alarms and sensors. Significant cost savings 
can be achieved using the same physical cable plant for many 
uses instead of installing separate cable plants for each 
use; this can be a significant selling point to a potential 


MSer. 
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For users who want only to speed up current office 
tasks, the general availability and supportability of a 


baseband system has many advantages, discussed elsewhere in 


this paper. 


C. WHAT A LAN ISN’? 

By now, the reader has probably noticed the phrase "the 
LAN will support" instead of "the LAN will provide." As 
explained earlier, a local area network only addresses 
layers one through four of the ISO OSI model. The higher 
levels, notably the application level, are not considered 
part of the network. The local area network is like an 
engine. The higher levels are equivalent to wheels. 

Neither alone is able to do anything. The short definition 
of a LAN, a smart transmission path, says it all. No one 
expects a piece of wire to provide electronic mail or file 
transfer. A network by itself, 1s not capable of electronic 
mail or maintaining a calendar. 

A local area network is not the user devices attached to 
it, nor does it include the applications software used with 
it. Explanations of the services supported by a LAN 
invariably describe services that require workstations and 
special software. The devices and software, along with the 
network, are part of an information system. Office informa- 
tion systems (OISs) do include the devices, software, and 


connectivity (the local network). A given OIS may use only 
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one channel of a broadband network. A single physical 
broadband cable plant can support many logical networks. 


Therefore, many OISs can exist on a single LAN. 


D. REQUIREMENTS 

User requirements are varied. A primary requirement is 
to have a single workstation or microcomputer which can 
provide the user with access to the other users and 
processes supported by the local area network--replace the 
"air gap." A wing commander may require access to every 
database on the installation. A command post would require 
Such access to support contingency operations. Command and 
control is not supported by having many terminals hardwired 
to aS many mainframes; it is best supported by having a 
robust network that allows a single terminal access to many 
mainframes and databases. 

Flexibility is another requirement. The network 
management system should be able to reconfigure the system 
to support physical relocation of any user community. A 
tornado destroyed both the air traffic control tower and the 
command post at Altus AFB, OK, in May 1982. The alternate 
operating location for both functions was the alternate 
command post. Because the alternate command post could not 
physically support both functions, air traffic had to be 
controlled from the cockpit of a C-141 until a temporary 


tower was ready. If the command post functions could have 
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been relocated to some other office, air traffic control 
operations could have taken place in the alternate facility. 
Relocation and reconfiguration flexibility is a major 
advantage of a LAN. 

The AFLANSPO conducted a survey in 1983 of potential 
local area network users. (See Appendix C.) The survey 
dealt with the following areas: applications which need 
data communications; numbers of devices to be networked, 
current and future projections; mobility requirements; 
connectivity among different types of devices; requirements 
for access to long haul networks; security requirements; and 
Survivability requirements. 

The survey results showed a wide variety of applications 
that would require data communications. These applications 
included word processing, electronic mail, document distri- 
bution, and video conferencing. 

The survey also showed that the number of devices 
requiring network connectivity was expected to increase 
every year. The networking scheme would have to support the 
periodic relocation of devices, as well as the growth in the 
number of devices on the network. 

User responses showed a need for connectivity between a 
variety of devices (terminal to host, host to host, 
workstation to workstation) as well as connectivity between 


devices from different vendors. Connectivity through the 
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local net to devices that could only be reached over a long 
haul network was also required. 

Dee ais kis was a major concern of potential Air Force 
local network users; eighty-six percent indicated a 
requirement for handling classified data. Survivability was 


also important to those surveyed, as many of the nets would 


support command and control, and combat operations. 


E. SUMMARY 

The current state of local area network technology can 
accommodate a wide variety of user requirements, but it 
cannot support existing requirements for security and net- 
work management. A well-designed local area network must 
provide access to all the data required for job performance 
from a single terminal. It must have the flexibility to 
support future growth and reconfiguration while maintaining 
a high degree of reliability. Continued education is needed 


to ensure maximum functionality of the users’ networks. 
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IV. PROBLEMS IN IMPLEMENTING A STANDARD AIR FORCE LAN 


As OMS) ING 

The original ULANA concept was to meet every requirement 
at every Air Force installation with the same network. 
Every base would have a large broadband local network 
capable of supporting 10,000 users. The family of network 
interface units would be able to support every Air Force 
owned or leased endpoint object (EPO). The primary 
advantage of this approach was it would have provided a 
Single system for users to learn. Once a user had been 
connected to any Air Force LAN, he would be able to operate 
at any Air Force location with no retraining. Although this 
approach would probably satisfy most Air Force requirements, 


there were major disadvantages. 


Bre COST OF ‘CONNECT ECN 

Interpretation of Air Staff guidance on use of protocols 
led to a design that included Transmission Control 
Protocol/Internet Protocol at the network interface unit; 
this would place a substantial economic penalty on users 
with dumb terminals to be connected to a mainframe, for 
users whose PCs are treated like dumb terminals by their 
network, and for users whose PCs could incorporate the 


protocols internally. These three categories of users form 
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a very large segment of the potential Air Force local area 
network community. 

TRISH Ctahew feat thesnNtU could double or triple 
the cost of the terminal and bridge NIUs. Instead, I think 
these protocols should be implemented at gateway NIUs and at 
host computers serving as gateways to other networks. 
Terminal NIUs can be cards that are inserted into slots on 
some PCs; these cost about $500 each. TCP/IP, when 
available in this format would add about $1000 to the price. 
Other types of terminal NIUs are boxes that have two to 
thirty-two ports. Bridge NIUS can also be boxes; they 
usually link two to four channels (on a broadband net) or 
Similar networks (for baseband). Implementing TCP/IP ina 
Boee~" NIU costs from $1000 to $2500 per box. Although 


implementing TCP/IP at a gateway is more expensive (about 


$5000), the cost per device served is less. 


oF FUNDING 

It is nearly impossible to implement a base wide local 
area network on an Air Force base because of arbitrary 
funding rules. A major command (MAJCOM) will "own" the base 
and be the host. However, every base has tenants from other 
MAJCOMs. These commands control their own funds for base 
level communications and ADP. A host will not normally want 
to pay for, nor be funded to provide connectivity for a 


tenant. A potential solution to this problem would be to 
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have Air Force Communications Command (AFCC) centrally 
manage all funds earmarked for local area networks since 
AFCC is bashed with implementing local area networks for the 
Air Force. Despite the apparent efficiency of this 
solution, it was not approved by Air Staff; consolidation of 
LAN funds would have created a large target during the 
budget process and AFCC, as a support (vice operational) 
command, hasS a poor track record of defending budget cuts. 

As an alternative a requirements contract is being 
pursued. A requirements contract 1s a contract set up for 
use by many organizations buying the same thing at different 
times. The major advantages of this type of contract are 
the lower cost per unit because of the larger purchase 
quantity, the speed of acquisition since implementers can 
order from the existing contract and do not have to 
recompete every implementation, and the standardization 
allowed when items are purchased from the same vendor. 

Also, if a requirements contract exists, its use is mandated 
for all applicable acquisitions. 

AFCC has to implement local networks with money provided 
by MAJCOMs and only for particular portions of a base. 
Because of the time it has taken the AFLANSPO to develop 
standards, no requirements contract for LANs exists; there- 
fore, the implementations are done on a case-by-case basis. 
If AFCC cannot meet a command’s required operational date, 


that command may bypass AFCC and contract out the effort 
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itself. While this approach may satisfy immediate require- 
ments, it has led to a proliferation of many small networks 
and ee equipments outside AFCC’s control, but which 
AFCC may eventually have to operate and maintain (O&M) with 
in-house or contracted personnel. Work is progressing 
Within the Air Force to get LAN requirements and O&M 


contracts which will provide timely implementations and 


standardized, supportable local area networks. 


De ADP VERSUS COMMUNICATIONS 

Within AFCC, ADP and communications are treated the 
same. However, the General Services Administration (GSA) 
keeps the two categories strictly, if arbitrarily, separate. 
ADPE purchases require submission of a request to GSA for a 
delegation of procurement authority (DPA). The DPA process 
can add a month or more to the acquisition cycle. GSA has 
stated that LANs and LAN components are ADPE. In the case 
of a requirements contract, once the DPA has been obtained, 
the problem is solved. An additional month for the 
case-by-case acquisitions is more serious. A single month’s 
delay can result in the loss of funds by moving an 


acquisition into the next fiscal year. 


E. AVAILABILITY 
A further disadvantage of the original ULANA approach 
was that it did not use commercially available products. 


The single-style Air Force local area network required 


og 


Significant research and development expenditures--and time. 
Many users did not wait for ULANA to develop Air Force 
eeanderdce but bought their own local networks. Asa 
result, AFCC set up an Implementation of Local Area Networks 
(ILAN) office in an effort to direct LAN acquisitions 
towards the evolving ULANA standards. Since there was no 
requirements contract, procuring a local area network was 
done on a case-by-case basis and could take up to eighteen 


months. The advantage to the user was the guarantee of 


maintenance for the network. 


EF. TYPICAL INTERCONNECTION SCENARIOS 

How does one apply the above knowledge of topologies, 
access methods, and operational requirements to provide a 
design satisfactory to the user? Is a unique military 
solution necessary or superior to deSigns available 
commercially? Three typical connectivity situations and 
potential solutions will be outlined below to demonstrate a 
design process. (See Appendix D.) The first example will 
be a small office environment. The other two will be large 
organizations, one with all (or most) members in a central 
location, the other with its members dispersed over a fairly 
large geographic area. The size of the organization should 
be the first consideration, then other requirements can be 


taken into account. 
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1. Small organization 

A small organization could be the base legal office 
ora Beat oncnede section of a larger organization. This 
simplified example will use three adjacent rooms on one 
floor of a building. One room will house the division chief 
and division secretary and there will be a four person 
branch in each of the other two rooms. 

Each person has an IBM PC compatible microcomputer; 
the division secretary has an IBM PC/AT compatible computer 
(multitask personal computer). Each branch and the division 
chief have a draft quality printer. The secretary has a 
letter quality printer and produces the final copies of all 
documents. 

The multitask workstation has a large (50Mbytes or 
more) magnetic storage unit (hard disk drives or Bernoulli 
box). All division work is stored here when completed or 
ready to be sent out; data on the storage unit is backed up 
weekly. 

It 1S possible to rely on air-gap connectivity for 
such a small organization. However, with individual storage 
plus storage at the multitask workstation, it will be 
possible to move to an electronic filing environment and an 
electronic mail environment. The e-mail environment will 


also allow information exchange outside the division. 
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There are two problems to be solved: how to hook up 
the ten PCs and four printers to each other and how to 
provide ore OIS access to other networks. 

A star topology, using the multitask workstation as 
the central point, could be used. A polling system would 
allow the other PCs to request services, primarily to use 
the printers, pass files to the secretary, and for access to 
e-mail. Some disadvantages to this would be the multitask 
workstation aS a Single point of failure, having to run 
wiring from each PC and printer to the multitask 
workstation, and having to send a request for access toa 
printer in the same room. 

A token passing ring would be a better solution, 
especially in such a small organization. It would not 
require as much wire and requests for printing could be sent 
directly to the desired printer. This has the added 
advantage of allowing a PC other than the secretary’s to 
directly use the letter quality printer. 

The multi-task workstation should be used as the 
connection point to outside networks for both solutions 
described above. Although a malfunction with this 
workstation would prevent connection to another network, it 
is the most flexible solution when the type and location of 
gateways to other networks is unknown. This is also the 


most cost effective as the organization will only have to 
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Figure 3 Token Passing Ring for a Small Office 
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implement the Air Force protocol standards for a single 


workstation, not all ten of them. (See Figure 3.) 


2. Large, geographically concentrated organization 

For purposes of this paper a large organization is 
one with more than a hundred people. For this example, the 
large, geographically concentrated organization will have 
500 members and be housed in a single three story building. 
There are 100 people on the first floor and 200 on each of 
the other two floors. The goal is to have a PC for every 
member of the organization, but right now there are seventy- 
five PCs on the first floor, 100 on the second floor and 
seventy-five on the third floor. Some of the PCs do not use 
an IBM-compatible disk operating system (DOS) and will be 
replaced as funds permit; therefore, the documents on them 
must be converted for use on a DOS-based PC. There are two 
mainframe computers in the building and both can be hooked 
into a nearby terminal access controller (TAC) for DDN 
access. The mainframes host several application programs 
and can act as servers for the PCs. 

To solve this problem it, too, must be broken down 
into its component parts. A continuing problem, until all 
the microcomputers use the same operating system, is sharing 
documents between computers with incompatible operating 
systems. Translation at a host computer would be the 
optimal solution. If this is not possible, an interim 


solution would be to use a communications application 
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program to move documents between operating systems. This 
would require "manual" translation of some control 
Brees clare in the documents, but is generally preferable to 
retyping the documents. In both cases, the connections that 
Support the net will also support the document translation. 

The other components of the problem are connecting 
all the endpoint objects and supporting the desired increase 
in EPOs. These must be broken down into the same level of 
detail provided in the analysis of the small organization. 
Location of EPOs and direction of information transfer are 
the important considerations in providing an adequate 
Pelueton f£oumthis Dbualdings If each floor is fairly 
autonomous and the information transfer 1s primarily within 
each floor, then each level of the building could be treated 
separately with information transfer between floors going 
through the mainframe computers. However, for this 
analysis, the organization in the building is a hierarchical 
one and the upper levels of the organization are housed on 
the first floor. Subordinate levels (divisions and 
branches) are on the second and third floors. Therefore the 
information transfer within each deputate of the 
organization must travel between floors. There is also a 
Significant amount of communication between counterparts in 
different deputates. 

If there were four or fewer deputates within the 


building and no significant growth planned, it might be 
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feasible to use a star configuration for each deputate, tie 
each one to a mainframe, and allow the mainframes to provide 
connection between the deputates of the main organization. 
In our example, however, the organization has eight 
deputates and a goal to double the number of devices, so the 
star configuration is not feasible. 

If each deputate was located in the same section of 

the building (even though on different floors) and there was 
a limited growth requirement, each one could be connected by 
a token passing ring. This could be an inexpensive solution 
if the building was prewired with datagrade twisted-pair 
wire and there was spare capacity. Each ring would be 
connected to a mainframe which would provide internetwork 
communications: to the other deputates, to local area 
networks on the installation, and to long-haul networks. 
The rings should be dual rings so that a single break in the 
ring will not bring the network down; this will allow 
breaking the ring to add EPOs without bringing the network 
down. A major advantage of this solution is that it is 
commercially available (IBM Token Ring, Z-LAN) with network 
management. However, this solution does not support the 
peer traffic between deputates as the host computers will 
become a chokepoint for all internetwork information 
EawsSbrer . 

A tree topology using carrier-sense multiple access 


with collision detection (CSMA/CD) over broadband cable is a 
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Intrabuilding Broadband Tree for a Large Organization 
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better solution for this organization. This type of neétwoer- 
will provide each deputate with its own virtual OIS by 
giving ace their own channels. Intradeputate traffic would 
stay on the same channel while interdeputate information 
would switch channels at a bridge NIU. Extra head-ends and 
a dual cable system would ensure enough bandwidth for the 
anticipated increase in devices. Use of gateway NIUs would 
allow direct connection to the DDN TAC, if required. The 
disadvantage of this solution is the limited network 
management currently available. 

In the above solutions, a case can be made for 
implementation of TCP/IP only at the host computers because 
they provide the organization’s interface to other networks. 
The gateway NIUs in the tree local area network would also 
have to implement TCP/IP. (See Figure 4.) 

3. Large, geographically dispersed organization 

This example will be a 400 person organization 
Spread in several buildings over an Air Force base. The 
base is about three miles square (1.75 by 1.75 miles). The 
organization is an engineering group formed from the 
consolidation of six smaller units. Each unit had its own 
buildings and no relocation took place after the larger 
organization was formed. There are three fifty person 
sections, two twenty-five person sections, and one 200 
sexten section. The largest section takes up four buildings 


of a six building complex. One of the smallest sections is 
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in another building of the complex, and the other one is in 
a solitary building half a mile away. The remaining three 
sections — have their own building and are located within 
500 yards of each other ina fairly populated area on the 
base. These three sections are about half a mile from both 
the largest and the most isolated sections. 

The largest section writes technical manuals, test 
procedures, and reviews statements of work for technical 
accuracy. Members of this section also participate in test 
and evaluation teams for communications systems. The small 
isolated section has a classified mission and also requires 
access to most of the documentation produced by the other 
sections. The mission of the section collocated with the 
largest one is computer chip and integrated circuit design. 
The other three sections perform the same mission for 
different types of equipment: install, train, and provide 
contingency engineering support. Part of this mission is 
classified, but the travelling associated with the job 
requires much administrative support. 

All the administrative functions of this 
organization are supported by IBM PC compatible 
microcomputers in each section. For some sections, the 
computers are TEMPEST certified to prevent unwanted 
emanations. The integrated circuit section has a computer 
assisted design (CAD) system in a vault; this system is not 


compatible with the IBM PC, but can be linked over an 
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Ethernet to IBM and compatible PCs. The organization does 
not expect to add many endpoint objects but ultimately 
requires : multilevel secure network to support both the 
classified and unclassified portions of its mission. 

The organization’s goal is to electronically link 
its dispersed units in such a way that the network will 
support multilevel security when it becomes available. 
Dealing with future capabilities is much more difficult than 
dealing with future growth and requires a careful analysis 
of the current and projected information paths. The 
isolated section only requires connectivity to the largest 
section for documents and to a multilevel secure gateway 
(when available) for access to Department of Defense secure 
networks. The other sections require access to each other 
and to a multilevel secure gateway when one becomes 
available. Reliability of the network and the gateways is 
critical to the mission. 

A mesh topology will be used by this organization to 
Support its reliability requirement--there will be at least 
two paths between any two sections and at least two gateways 
any section can access. Optical fiber will be used for all 
interbuilding connections. This will prevent electrical 
emanations when the network is able to send classified 
traffic. The disadvantage of this network will be the 
price. Because of the cost, the group’s local network will 


have to evolve. The topology will evolve from a tree to 
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mesh in order to support multiple paths between sections and 
gateways. The network will evolve from connected baseband 
nets into a broadband network to take advantage of both 
existing network management capabilities and current local 
transmission capabilities over optical fiber. 

Each section will start with a baseband net most 
appropriate for its size and pattern of information 
transfer. No EPOs meeting TEMPEST criteria or ina vault 
can be connected to any network until the required security 
is available. Therefore, the largest section will get the 
first local area network, followed by the three installation 
sections. The administrative area of the microchip section 
can probably be served by the large section’s network. The 
isolated section can hand carry disks over a long air-gap 
until it gets a network. 

The interbuilding links should be multiple-fiber 
cables. Then, each baseband network can operate on its own 
fiber which will reduce costs of electro-optical components; 
only one section will be sending traffic over a given fiber, 
so only one light source will have to be modulated and 
demodulated on each fiber. 

The first link installed should go from the 
multi-building complex to one of the three installation 
sections. The next links should connect the the buildings 
within the multibuilding complex and then the three close 


buildings. The second long link should be between the 
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complex and the solitary building. As funds permit, 
additional long links should be installed until each of the 
three miese buildings 1s separately connected to the complex 
and the solitary building is connected to one of the three 
close buildings. As the network evolves, it may be possible 
to sell any extra capacity to other users on base. 

It may be necessary to purchase a mainframe computer 
to host application programs and to act as a gateway between 
the initial networks. Careful planning will allow this host 
to continue as an applications server and to provide network 
management for the goal network. (See Figure 5.) 

Ce SUMMARY 

Most problems plaguing local network implementation can 
be traced to funding, lack of central control, and absence 
of a standard method for procuring local area networks. 
Support commands’ (AFSC and AFCC) efforts in establishing 
standards have not been fast enough to support the oper- 
ational commands, leading to a proliferation of potentially 
unfunctional and hard-to-maintain local area networks. 

Three representative connectivity problems that can be 


solved by a local area network were described. Solutions 


uSing available technology were then proposed. 


a 


V. RECOMMENDATIONS 


Ae TNTRKOCDUGTION 

A brief overview of local area networks has been 
presented. The discussion covered basics of local area 
networks, Air Force requirements, and problem areas. A 
pragmatic, commercially available solution will be proposed. 
The Air Force 1S currently developing a requirements 
contract for LANs and LAN components. Once the contract is 
in place, all commands will have to use it. They’ll be 
willing to do so because it will be the quickest way to get 
a local area network. As previously stated, a requirements 
contract minimizes both the funding problem and the DPA 
issue. 

The recommended solution is an alternative to the 
Original ULANA concept of a single AF LAN. My solution 
Sacrifices total standardization for commercially available 
products that will support users now. Instead of a single 
type of LAN, the tailored LANs will allow a choice froma 
set of standards. 

My solution supports implementing TCP/IP as close to the 
endpoint objects as feasible economically. Gateways must 
implement TCP/IP and some bridges should implement these 


protocols. As TCP/IP board and chip costs decrease, 
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implementation at every endpoint object may become cost 


Srrective. 


Be DESIGN 

As shown above, no single design is suitable for all 
users, sO a Single design should not be mandated or used. A 
careful analysis of local user requirements should be made 
before a network design is selected. The network selected 
must support the current and future needs of its users. The 
analysis should identify the following: mission and 
organizational structure to be supported; physical locations 
to be connected; types of computers and peripherals to be 
connected; existing host processor and terminal locations; 
equipment and organization relocation; security, 
Survivability, and reliability requirements; types of commu- 
nications (internal, lateral, or hierarchical); number of 
users Within a particular user group; and required data 
transmission rates. 

To meet all requirements, a base should have a broadband 
backbone which connects networks. Each user group will have 
the type of LAN that best supports it. A base would then 
have a fiber backbone with branches of broadband coaxial 
cable, baseband coaxial cable, twisted pair, and optical 
fiber. The backbone could also be broadband coaxial cable. 


A user group would then be able to use the topology and 
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Potential LAN Solution for an Air Force instaltacued 
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access method that best meet its requirements and budget. 


(See Figure 6.) 


Cu IMPLEMENTATION 

Successful implementation depends on availability of 
requirements contracts. To maintain fair and open 
competition, each type of local area network should be 
awarded a separate requirements contract. An alternative 
would be teams of contractors bidding on an all-inclusive 
local area network requirements contract. With such 
contracts in place, a requirements analysis would be 
accomplished by the ILAN office and the appropriate 
components for the design would be ordered and installed. A 
broadband backbone will have to be provided as part of the 
base cable plant; the host command and AFCC should fund the 
backbone, since it will provide service for every element on 
the base. 

A research and development contract must be let to 
develop a network management system that works with products 
from multiple vendors and can manage many subnets (including 
those that have proliferated while standards were being 
developed). Then, O&M of the base level network can be 
conducted from a single location by AFCC personnel. For 
reliability and survivability, network management subsystems 


can be used, providing graceful degradation of the system. 


bY 


Each subsystem would provide data to the NMS automatically, 


but could be manned 1f the NMS =tautece 


D. SUMMARY 

A strategy for local area network deSign and 
implementation for the Air Force has been proposed: use of 
commercially available local network technology implemented 
through requirements contracts. The strategy supports Air 
Force requirements for connectivity and flexibility and can 
be procured under current funding policies. 

This thesis was motivated by the AFLANSPO. ULANA is a 
research and development program attempting to design a 
Single standard local area network to satisfy all Air Force 
requirements. Although the goals are admirable, the time 
taken to develop the standards has permitted the 
proliferation of nonstandard local area networks. Selection 
of a subset of commercially available products will satisfy 


the majority of users while reducing the O&M problems. 
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APPENDIX A 


DEFINITIONS AND ABBREVIATIONS 


ADPE - Automated data processing equipment 


AFCC - Air Force Communications Command 


AFSC Air Force Systems Command 


Air Force Specialty Code; designator of skill an Air 
Force member possesses 


AFSC 


AFLANSPO - Air Force Local Area Network Systems Program 
Office; part of Air Force Systems Command’s 
Electronic Systems Division at Hanscom AFB, 
MA 


Architecture - Design principles, physical structure, 
functional organization, data format, 
operational procedure, and other features 
used as the basis for the design, 
development, and operation of a user 
application network 


BITS - Base information transfer service; intrabase courier 
Sory Teo 


CSMA/CD - Carrier Sense Multiple Access with Collision 
Detection; a LAN access method 


DPA - Delegation of Procurement Authority; from GSA granting 
authority for a particular acquisition to 
another agency/organization 


EPO - Endpoint object; device connected to a LAN such as a 
computer, printer, or storage device 


FDM - Frequency division multiplexing; the available 
transmission frequency range is divided into 
narrower bands each used as a separate 
channel 


Full-duplex - Capability to transmit and receive data at the 


same time; able to transmit across a line in 
both directions at the same time 


DS, 


GSA - General Services Agency 


Half-duplex - Able to transmit only or receive only ata 
: given time; capable of transmitting across a 
line in only one direction at a time 


IP —- Internee Provteco! (MIL—-sit tie. 

ISO - International Standards Organization; established in 
1947 to promote development of standards in 
computer technology, US representative is 
ANSI 

LAN - Local area network; a smart transmission path used to 
Support applications such as file transfer 
and electronic mail 


Layer - A group of related functions that comprises one 
level of a hierarchy of functions 


MAJCOM - Major command (i.e. AFCC, Strategic Air Command, 
Military Airlift Command, AFSC) 


MIL-STD - Military standard 
NIU - Network interface device; provides connection to a LAN 


NMS - Network management system; provides realtime 
configuration and control of network 


OIS - Office information system; a system that includes 
hardware and software to automate office 
functions 

OSI - Open Systems Interconnection; seven layer protocol 
model developed by ISO to support LAN 
standards 

PABX - Private automatic branch exchange; computerized 


Switching equipment capable of switching 
analog and digital signals 


PC - Personal computer 

Photon - A quantum of electromagnetic energy 

Photonics - Use of photons instead of electrons for signal 
transmission; optical fiber has a greater 


bandwidth than any electronic transmission 
medium 
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Protocol - Rules for communications system operation that 
must be followed if communication is to be 
effected; designed to control the layers of a 
; communications network or to control the 
exchange of data among computers in a network 


TCC - Telecommunications center 
TCP - Transmission Control Protocol (MIL-STD-1778) 


TEMPEST - An unclassified short name for investigations and 
studies of compromising emanations 


ULANA - Unified Local Area Network Architecture; being 
developed by the AFLANSPO to provide LAN 
standards for the Air Force 


WDM - Wavelength division multiplexing (photonics); the 
multiplexing of lightwaves ina single 
transmission medium such that each of the 
waves are of a different wavelength and are 
modulated separately before insertion into 
the medium; WDM is the same as FDM applied to 
visible light frequencies of the 
electromagnetic spectrum 
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APPENDIX B 


TEXT OF HO USAF/SIT 0122002 SEF S43iissaen 


SUBJECT: Policy for Implementation of Data Communications 
Protocols 

REFERENCES: 

A. USDRE Memo, Host-to-Host Protocols for Data 


Communications Networks, 23 Dec 78. 


ASD(C3I) Memo, Host-to-Host Data Communications 
Protocols, 3 Apr 80. 


USDRE Memo, DoD Policy on Standardization of 
Host-to-Host Protocols for Data Communications Networks, 
23 Mar 82. 


USDRE Memo, Defense Data Network (DDN) Implementation, 
10 Mar 83. 


USDRE Memo, DoD Policy on DDN Protocols, 14 May 84. 


HQ USAF/XOK/ACD Message, 191245Z Apr 83, Policy on 
Protocols for Packet-Oriented Local Area Networks. 


DCA/DCEC (R130) Memo, Data Communications Protocol 
Standards Area Program Plan, 16 Jul 84. 


Draft DoD Protocol Reference Model, 2 Dec 83. 


Draft Security Annex to the DoD Protocol Reference Model 
(UO) > (SECRET) Se 2eallovers oe. 


DoD Standard Internet Protocol, Jan 80. 

DoD Standard Transmission Control Protocol, Jan 80. 
MIL-STD-1777, Internet Proetecel, Zz Auewoee 
MIL-STD-1778, Transmission Control Protocol, 12 Aug 83. 
MIL-STD-1780, File Transfer Protocol, 10 May 84. 
MIL-STD-1781, Simple Mail Transfer Protocol, 10) May seas 


MIL-STD-1782, TELNET Protocol) 0c) aco 
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Q. BBN Report 1822, Specifications for the Interconnection 
of a Host and an IMP, Dec 81 Revision. 


Ree DPN X>25 Host Interface Specification, Dec 83. 


S. FIPS Publication 100/FED-STD-1041, Interface Between 
Data Terminal Equipment and Data Circuit-Terminating 
Equipment for Operation with Packet-Switched Data 
Communications Networks, 6 Jul 83. 


T. DDN Subscriber Interface Guide, Jul 83. 


U. WWMCCS Host to Front End Protocols: Specifications 
Version 1.0, 5 Nov 79. 


Peeeee/sit Letter, USAF Use of the DDNy 22 Jun 83. 


1. SUMMARY. This message provides an overview of data 
communications protocols, the evolving DoD protocol 
reference model, DoD standard protocols, and reiterates and 
affirms Air Force policy on the mandatory use of DoD 
standard data communications protocols. It is intended to 
provide a common basis of understanding of the role of data 
communications protocols in information systems 
architectures and the importance of standardized protocols 
in achieving flexible and adaptive systems capable of 
Sustaining misSion essential services under stress. This 
information should be given wide dissemination to include 
acquainting functional users of information systems with the 
concepts and policies. 


2. DATA COMMUNICATIONS PROTOCOLS. 


A. Improvements in electronic technologies, exemplified 
by the advent of inexpensive and powerful microprocessors, 
are restructuring the application of information systems 
across the Air Force. These improvements are promoting the 
evolutionary growth of distributed (decentralized) and 
specialized information systems capabilities. This 
evolution offers significant potential to achieve 
information systems which are more responsive to mission and 
command requirements. For example: 


(1) Robust systems capable of sustaining essential 
functional capabilities while subjected to significant 
levels of stress. 


(2) Specialized of functionally-dedicated 


subsystems optimized to extend the abilities to meet 
demanding user applications. 
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(3) Controlled resource sharing which extends the 
scope of functionality available to a wider group of users 
while maintaining privacy/security controls. 


(4) Graceful incremental evolution and capabilities 
to rapidly accommodate additional users, system upgrades, 
and new services. 


(5) Adaptation to the leadership style and support 
requirements of commanders. 


(6) Enhanced timeliness, accuracy, efficiency and 
cost-effectiveness of information systems. 


B. To achieve the full potential of these evolving 
information systems--particularly the level of flexibility 
required to provide survivable and enduring information 
systems support--a corresponding growth in the level of 
controlled interconnection and interoperability of 
information systems and subsystems 1s essential. 
Consequently, there is an accelerating demand for high-speed 
telecommunications and interoperable information system 
architectures. Improvements in relatively inexpensive high 
bandwidth local telecommunications (e.g., coaxial and fiber 
optic cable transmission systems) and the proven efficiency 
of packet switching technologies have supported these 
demands. 


C. Exchange of information among information systems 1s 
a complicated process. The required cooperation must be 
formalized in rules which define the methods, procedures, 
and conventions (to include syntax and semantics) for 
carrying out the exchange. These rules are called protocols 
and are embedded in particular implementations within the 
information systems elements. Protocols are required not 
only to effect the movement of information but also to 
insure mutual understanding. 


D. Protocols are explicitly or implicitly contained 
within the information systems architectures. Vendors have 
tended to deal with protocol issues independently. This has 
given rise to differing approaches which are often 
proprietary and generally incompatible. However, growth in 
the use of, and dependence on, automated information 
processing; requirements for interoperation of distributed 
elements; and costs/inefficiencies associated with dealing 
with numerous incompatible protocol architectures have 
highlighted the need for standardization. 


E. Due to the complexity of data communications, the 
problem must be approached in a structured fashion which 


64 


subdivides the issues into manageable portions. This 
resulted in a concept of a layered hierarchy of protocols. 
Each protocol layer interacts with its corresponding (peer) 
layer located in the other information system elements. 
However, this interaction generally requires support 
services from a lower layer. Further, each protocol layer’s 
implementation of its services is intended to be independent 
of the other layers’ implementations except for the 
input/output exchanges (interfaces) which occur between 
layers to either request a service or respond to such a 
request. In this manner, protocol development and 
implementation can be done relatively independently and a 
modification in the implementation of one layer (that is, of 
one or more of its protocols) provided that the services 
offered remain the same and the input/output characteristics 
(interfaces) are not altered. Peer-level protocol 
implementations in the different information systems 
elements need not be identical, as long as the 
implementations conform to the protocol conventions to 
achieve interoperability. 


F. However, in order to implement this concept there 
must be a determination made as to the functions to be 
provided by the protocol hierarchy, and an allocation of 
subfunctions to a defined set of layers and protocols within 
the layers. This is the principal purpose of a protocol 
reference model. 


G. There are two efforts to develop protocol reference 
models. The DoD is formalizing a reference model which 
evolved from protocol development associated with the 
ARPANET. In addition, subsequent to much of DoD’s 
development, the International Standards Organization (ISO) 
began development of a reference model for Open System 


Interconnection (OSI). (NOTE: An “open system" is one 
which complies with the OSI model and OSI standards to 
facilitate interprocess communications.) Both the DoD and 


ISO reference models are structured to provide services 
through a layered hierarchy. It is DoD and Air Force policy 
to make maximum use of international and commercial 
standards consistent with mission requirements. The DoD is 
working with the National Bureau of Standards (NBS) and 
standards bodies to influence standards developments to 
address military requirements (e.g., survivability and 
security). To the extent that these efforts are successful, 
the DoD reference model and protocols will converge with the 
international and commercial standards. 
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3. DOD PROTOCOL REFERENCE SMebpEr. 


A. To achieve required flexibility, security, 
survivabitity and endurance to satisfy military 
requirements, the DoD reference model is governed by a set 
of fundamental principles which include: 


(1) That a common internet protocol be used in all 
networks which intercommunicate. (NOTE: Since the dynamics 
of warfare, crisis requirements, short-notice mission 
changes, and flexibility required to support restoral, 
recovery, and reconstitution will alter the functional 
requirements for intercommunication, it is a fundamental Air 
Force goal to provide the capability for intercommunication 
between all networks--and between elements within networks. 
Security and privacy requirements will dictate use of 
procedural restraints, to include technical safeguards, to 
functionally limit the exercise of this intercommunication; 
however, the technical means for intercommunication must be 
in place to sustain essential mission support and adapt to 
changing mission requirements. 


(2) That higher-level protocol groups should have 
minimum dependence upon properties of subnet services. 
(NOTE: The peacetime or normal day-to-day characteristics 
or services of networks may change dramatically under stress 
(e.g., damage, degradation resulting from inability to 
adequately maintain the network due to stress-related 
logistic or personnel restraints, increased congestion due 
to crisis loading or loss of network elements, longer 
traffic routes to bypass network damage or compensate for 
congestion) .) 


B. The DoD reference model employs a hierarchical 
layering. The layers (levels) are aggregated into groups to 
provide a means of describing similar features. 


(1) Application Protocol Group: Provides 
functionality specific to a particular application. 


(A) Application level, containing protocols 
that directly provide the distributed information services 
appropriate to an application and to its management. 


(B) Presentation level, containing protocols 
that perform virtualization of data representations and 
shared resources. 


(2) Process-to-Process Protocol Group: Provides 


ability to transfer data between processes running on hosts 
connected by an internet (to include hosts on same network). 
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(A) Session level, containing protocols that 
help to coordinate use of multiple transport services, as 
well as provide name servers and access controllers. 


(B) Transport level, containing protocols that 
provide for process-to-process communication across one or 
more networks. 


(3) Internet Protocol Group: Provides the ability 
to transfer data between hosts connected by an internet (to 
include hosts on the same network). 


(A) Internet control level, containing 
protocols that perform management functions for the 
internet. 


(B) Internet level, containing protocols that 
perform routing between networks, supplying host-to-host 
data communications service. 


(4) Network Protocol Group: Allows hosts to 
transfer data in a common network configuration. These 
hosts must be explicitly involved in the networking 
activity, such as making routing decisions, for a protocol 
to be placed in this group. 


(A) Network level, containing network-specific 
protocols that allow for data transfers over a single 
network of which the host is an integral part (i.e., host is 
also a network node). 


(5) Subnet Protocol Group: These protocols are the 
lowest level protocols and are dependent on the underlying 
technology. They include protocols for transferring data 
between two physically separated entities, protocols with 
the ability to interface a host to a subnet, and protocols 
with the ability to access a shared communication media. 


(A) Data link level, containing protocols that 
manage the transfer of data across a single data link. 


(B) Physical level, containing protocols that 
provide mechanical, electrical, functional, and procedural 
requirements to access and to transfer data onto a physical 
communications channel. Often the physical level is 
embodied directly in hardware as opposed to software. 


(C) Subnet level, containing protocols that 


interface a host computer or network front-end to a 
particular subnet. 
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(D) Access level, containing protocols which 
mediate access to a shared communications medium, such as 
coaxial cable or a free-space radio frequency channel. 


4. DOD STANDARD PROTOCOLS. 


A. Within the framework of the DoD reference model 
there are currently: 


(1) Five DoD standard protocols (refs L-P) which 
are mandatory for use in all DoD packet switching networks 
to support their respective services. 


(2) Two DDN/ARPANET access (host-to-IMP) protocols 
(refs R & S). 


(3) Several evolving standards: User Datagram 
Protocol (UDP), Stream Protocol (STP), Gateway-to-Gateway 
Protocol (GGP), and Exterior Gateway Protocol (EGP). To 
provide the full range of services required, additional 
protocols will be needed and development will continue. 


B. MIL-STD-1777, Internet Protocol] (IP). 


(1) IP is the underlying basis of the DoD 


internetwork architecture. It is to be provided in all DoD 
systems (refs A-E). It provides: 
(A) Basic datagram service. (NOTE: A datagram 


is a packet of information which is treated independently of 
any other datagrams for the purposes of routing and 
delivery. Each datagram carries all information necessary 
to reach its destination.) 


(B) Basis for dynamic and adaptive routing to 
compensate for network damage and congestion. 


(C) Datagram fragmentation and ordered 
reassembly (matches networks whose datagram length is 
dist ferent). 


(D) Internet addressing which uniquely 
identifies destination network, host and upper layer 
protocol. This service is critical in an internetwork 
environment where subnet addressing (e.g., within a local 
area network) is generally separately administrated. 


(E) Security options (fields for security and 
compartment labels, handling restrictions, transmission 
control code, and loose and strict source and record route) 
and header checksum. (NOTE: IP is closely associated with 
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ongoing efforts to develop and field end-to-end encryption 
through the internet private line interface (IPLI) and 
BLACKER programs. ) 


(F) Precedence. The IP "type of service" 
allows designation of precedence and trade-off between 
delay, reliability, and throughput. This provides a means 
of influencing the allocation of subnetwork resources and 
routing decisions. 


(G) Mechanism for error reports and other 
control messages (separately specified Internet Control 
Message Protocol--ICMP). 


meespeiereccdori itty. tthe intermet Protocol (IP) and 
the Transmission Control Protocol (TCP) are mandatory for 
use in all DoD packet switching networks which connect or 
have the potential for connecting across network or 
subnetwork boundaries. Network elements (hosts, front-ends, 
bus interface units, gateways, etc.) within such networks 
which are to be used for internetting shall implement 
TCP/IP. The term network as used herein includes local 
area networks (LANs) but not integrated weapon systems. Use 
of TCP/IP within LANs is strongly encouraged particularly 
where a need is perceived for equipment interchangeability 
or network survivability. Use of TCP/IP in weapon systems 
is also encouraged where such usage does not diminish 
network performance (ref L). The Air Force policy on 
protocols for packet-oriented LANs (reiterated and affirmed 
here) clarified this statement of applicability by 
designating TCP/IP as Air Force standards for connection- 
based transport and internet services within packet-oriented 
LANs (ref F). Due to the critical importance of inter- 
operability to achieve robust (flexible, survivable, and 
enduring) support for essential mission requirements, 
deviations to this policy require prior Air Staff approval 
(through MAJCOM/SOA channels to AF/SITT). Actions should be 
initiated to adapt existing systems to comply with this 
policy if (a) they interconnect or are planned for 
connection with other systems, or (b) they are reconfigured 
or modified to support additional functions or users. 


C. MIL-STD-1778, Transmission Control Protocol. 


(1) TCP was designed to operate above IP to provide 
reliable communications between pairs of processes in 
logically distinct hosts on a network or sets of 
interconnected networks. TCP serves as the basis for DoD- 
wide interprocess communication. TCP will operate 
successfully in an environment where the loss, damage, 
duplication, or misordering of data and network congestion 
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Can occur. This robustness in spite of unreliable communi- 
cations media makes TCP well-suited to adaptively support 
military requirements during stress. TCP provides 
connection-oriented (virtual circuit) data transfer which is 
reliable, ordered, full duplex and flow controlled. TCP 
includes the following mechanisms: 


(A) PAR mechanism. Positive acknowledgement 
with retransmission 1s used with sequence numbers and 
checksums to support data reliability, integrity and 
security. 


(B) Flow control mechanism. The receiving TCP 
can control the sending TCP’s flow to preclude overflowing 
the receiver’s buffers. This protects both the sending TCP 
from excesSive retransmissions and, indirectly, precludes 
waste of resources of connecting networks. 


(C) Multiplexing mechanism. TCP provides for 
multiple upper layer protocols within a single host and 
multiple processes in an upper layer protocol to use TCP 


Simultaneously. This enables a single network connection 
for a host to simultaneously support multiple 
services/users. 


(D) Security and precedence labelling. The 
security and precedence parameters are those used in IP and 
extend control closer to the end-user. In some 
applications, the TCP port may also be involved with access 
control. 


(2) In order to obtain the full benefits of the 
connection-based reliable end-to-end services of TCP (to 
include flow control), the TCP implementation should be as 
close to the application process as possible, e.g., in the 
host. However, the need to reduce loading on the host (for 
example, with a microprocessor-based workstation) may 
require use of a front-end device to offload as many of the 
communications functions as possible. In these instances, 
care should be taken to maintain the range of services and 
flexibility associated with TCP. There are three primary 
methods of interfacing a host to a front-end implementation 
of TCP: 


(A) The network handler in the host operating 
system may pass TCP commands and arguments to the front-end 
device. The front-end device passes the TCP commands and 
arguments to the TCP module. This provides minimal overhead 
in the host and maintains full TCP services. However, the 
host/front-end interface within both the host and front-end 
device is unspecified and does not support a general 
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application. Consequently, a standard host-to-frontend 
protocol (HFP) is desired. An example of an HFP is the 
WWMCCS HFP developed for DCA (ref U). This HFP is also used 
for the DIA DODIIS network front-end. Pending development 
of an international/commercial standard HFP, the WWMCCS HFP 
should be used to the maximum extent feasible. 


(B) Host operating system is not made "aware" 
of TCP and an exiting host protocol such as a terminal 
handler or disk controller is used. In this terminal or 
disk emulation mode, only a degenerate TCP service can be 
established. This defeats many of the TCP services. 
Further, required services will have to be established by ad 
hoc protocols (noninteroperable) established over the 
degenerated TCP connection. This approach should be avoided 
for other than interim implementations pending upgrade. 


(C) "Front-end" can be displaced over a network 
into a gateway device. This has several serious problems. 
First, no matter how reliable the network is normally, its 
characteristics are subject to change (perhaps drastically), 
particularly under stress. Consequently, displacement of 
the end-to-end services away from the applications processes 
Significantly increases the susceptibility of the transport 
mechanism to degradation, particularly relative to flow 
control. Second, the displacement of the reliable transport 
services to a gateway severely limits the survivability of 
this function even if the gateway function is provided 
redundancy. Without the gateway function, the host 
generally cannot operate in the internet environment even if 
a contingency/restoral circuit connects to another network. 
Mis 12s particularly critical to hosts requiring mobility or 
reutilization. Third, under this scheme there is no 
Standardized, reliable transport mechanism available 
internal to the network for host-to-host interprocess 
communications. Such services are critical for file 
transfers, electronic mail, and other higher level services. 
Consequently, this approach should also be avoided. 


(3) Applicability. The statement of application 


for TCP and Air Force policy on use of TCP within packet- 
oriented LANs is as specified above (para 4.B.(2)) for IP. 
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D. MIL-STD-1780, File Transfer Protocol (FTP) )themem 
usable directly by a user at a terminal or workstation, FTP 
is designed mainly for use by programs. 


(1) The objectives of FTP are as follows: 


(A) To promote sharing of files (computer 
programs and/or data). 


(B) To encourage indirect or implicit (vtageees 
grams) use of remote computers. 


(C) To shield a user from variations in file 
storage systems among hosts. 


(D) To transfer data reliably and efficiently 
for use by programs. 


(2) Applicability. "The file transfer protocol is 
mandatory for use in all DoD packet switching networks which 
connect or have the potential for utilizing connectivity 
across network and subnetwork boundaries and which require a 
file transfer service. The term network as used herein 
includes local area networks" (ref N). 


E. MIL-STD-~-1781, Simple Mail Transfer Protocol (SMTP). 


(1) Objectives. SMTP provides for the reliable and 
efficient transfer of electronic mail; directly from the 
sending user’s host to the receiving user’s host when the 
two hosts are connected to the same transport service, or 
Via one or more relay SMTP-servers when the source and 
destination hosts are not connected to the same transport 
service. 


(2) Applicability. "The simple mail transfer 
protocol is mandatory for use in all DoD packet switching 
networks which connect or have the potential for utilizing 
connectivity across network and subnetwork boundaries and 
which require a mail transfer service. The term network as 
used herein includes local area networks" (ref 0). 


FPF. MiL-STD=1782, TELNET Proececa 


(1) Objectives. TELNET provides a standard method 
of interfacing terminal devices and terminal-oriented 
processes to each other. The protocol may also be used for 
terminal-terminal communication (linking) and process- 
process communication (distributed computation). 
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Zope raicability: —'MEEENET protocol is mandatory 
for use 1n all DoD packet switching networks which connect 
or have the potential for utilizing connectivity across 
network and subnetwork boundaries and which require a 
virtual terminal service. The term network network as used 
herein includes local area networks" (ref P). 


G. FTP and similar higher level protocols are intended 
to insulate the end-users or end-users’ programs by 
providing virtualized (logical) resources (for example, FTP 
partially implements the concept of a network virtual file 
system). These virtualized resources are implemented with a 
common intermediate representation (a notional resource) 
which builds services on defined primitive functions. To 
provide fully interoperable services, it iS necessary that 
the notional or virtual resource be functionally limited to 
the set of services which can be supported by all actual 
resources (lowest common denominator). In order to provide 
enhanced services while still maintaining interoperability, 
the concept of negotiated service extension (options) is 
used. Either party (or both) may initiate a request that an 
option take effect. The other party may then either accept 
or reject the request based on its capabilities. This 
allows two communicating entities to raise the current level 
of service up to their highest common level. However, 
improper use of service extensions limits the number of 
compatible resources available. Unless programs are 
designed to continue to function (perhaps with some 
degradation or loss of efficiency) without these service 
extensions being available, their use will limit the degree 
of flexibility and survivability attainable. 


H. DDN Access Protocols. 


(1) The DDN is a packet switched network designed 
to fulfill DoD common-user data communications requirements 
(ref V). 


(2) DDN evolved from the ARPANET and used the 
existing host interface protocol (1822 protocol, ref Q). 
However, commercial public data networks were implementing 
fae international (CCITT) X.25 interface standard. Due to 
interoperability problems between different X.25 
implementations, USDRE prohibited (ref D) the use of X.25 
connections to the DDN until the DDN X.25 specification had 
been approved by the protocol standards steering group 
(PSSG). This approval was obtained and resulted in 
publication of the DDN X.25 specification (ref R). By ref 
E, USDRE authorized use of the DDN X.25 specification and 
directed that DDN X.25 become the primary DDN protocol. 
While the 1822 protocol will continue to be supported by the 
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DDN until phased out via evolution, it is DoD policy that 
all new systems and systems undergoing major redesign use 
levels 2 (link) and 3 (network/packet) of the DDN standard 
X.25 protecol for interfacing to the DDN. Exceeneions sce 
this policy require case-by-case waivers by ASD(C3I) 
(processed through command channels to AF/SITI). 


(3) The DDN currently supports DDN basic X.25 
service. At this level of service, X.25-connected hosts 
cannot interoperate with 1822-connected hosts. This is 
particularly critical to terminals connected to the DDN 
uSing DDN terminal access controllers (TACs). DDN TACs use 
1822-connections and cannot interoperate with X.25-connected 
hosts. Development of DDN standard X.25 service is 
progresSing and should be available by the 1st quarter FY86. 
DDN standard X.25 service will support interoperation 
between X.25-connected and 1822-connected hosts. 


(4) Irrespective of the access protocol used (X.25 
Or 1822), interoperability between like-connected hosts, or 
eventually any hosts, requires the hosts (to include network 
front-ends) to implement the DoD standard higher level 
protocols (1.e., IP, TCP, FIP, SMTP anderen 


5. Due to the critical importance of interoperability and 
standard data communications protocols to achieving flexible 
and adaptive information systems capable of sustaining 
mission essential services under stress, the policies and 
guidelines contained herein will be included in the Air 
Force Information System Architecture and, as appropriate, 
its subordinate elements. 
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ReEPENDEX Cc 
SUMMARY OF AFLANSPO USER REQUIREMENTS SURVEY 


AS BRIEFED MARCH 1985 


Requirements Survey Of Potential LAN Users Was Conducted 


A survey was conducted of over 330 organizations 
involved in various aspects of information processing in the 
Air Force in the United States and abroad. Well over half 
of the surveyed organizations responded. 

The survey dealt with the following areas: 

Applications which need data communications 

Number of devices to be networked now and in future 
Mobility of devices 

Connectivity among different types of devices 
Access to long haul networks 

Security 


Survivability 


Variety Of Applications Need Communications 

The survey revealed that user organizations either have 
or are planning for a wide variety of applications which 
need communications. For example, electronic mail is an 
application which uses computers as post offices for 


electronic letters. This application requires 
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communications to allow other computers to access the post 


office. 


Survey Reveals The Need For Network Expandability And Device 
Mobility 

The survey Showed that the average number of devices 
that will be serviced by a Single network on an Air Force 
base increases rapidly every year. The current number of 
devices serviced by a LAN is over 170, but within the next 
five years this number will reach over 1000. 

Offices and personnel on Air Force bases move often. 
The networking scheme must handle this periodic relocation 
of devices as well as the rapid growth in the number of 


devices that must be networked. 


Users Need Connectivity Between A Variety Of Devices And 


With Devices Outside The "Local Area" 

Connectivity is the ability to communicate with other 
devices. Users need connectivity between a variety of 
devices such as terminal-to-host, host-to-host and 
workstation-to-workstation. Also, there is a need for 
connectivity between devices from different vendors. 
Devices in one local area need to communicate with devices 


on long haul networks. 
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Security And Survivability Are Growing Concerns 


The average respondent to the survey reported that only 
18% of eRetY organization’s information is classified. This 
is expected to increase to 28% within the next five years. 
The survey also indicated that 86% of all Air Force 
organizations will have a requirement for handling 
classified data. 

The survey revealed that a significant percentage of Air 
Force local area networks will support command and control, 
and combat operations, or be exposed to combat operations or 


other damages. This requires the LAN to be survivable. 
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APPENDIX D 


SAMPLE QUESTIONNAIRES FOR INTERCONNECTION SGiNARies 


SMALL ORGANIZATION 
1. Point of Contact: Ms Pam Slotnik, (617) 555-1976 


2. Organization and Mission: 11AF/JA, Hanscom AFB, MA 
00111; base legal office. Our purpose in networking our 
devices is to facilitate transfer of information between 
computers in the office and to tie into the base electronic 
mail service and the Defense Data Network. A long term goal 
is to access other law libraries through public networks. 


3. OTrganlzatwronalmgstruceure; 


Division Chief 
Administration (1) 


Research/Contracts Branch (4) Legal Assistance Branch 


(4) 
4. Physical Location: Bldg 74, rooms 1, 2, and 4 
5. Existing Computer Locations: 


Make/model (quantity) R 
Zenith 248 iL 
Zenich 150 iL 
IBM PC 2 
Zenith 100 (3) 2 
IBM PC 4 
Zenith 100 (2) 4 
Zenith 150 4 


6. How often the equipment will be moved: The office has 
no plans to relocate in the foreseeable future. Equipment 
will not move when personnel relocate for permanent change 
of station or temporary duty. 


7. Security: Currently there are no security requirements 


for this office, however, there are significant privacy act 
COnSeralies. 
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See ourvivabmierty, Reliablltty. = No survivability requirement 
exists. A 90% reliability during office hours; normal 
office hours are 0700-1730, M-F. 


9. Installation Considerations: If possible, installation 
should occur outside normal office hours. 


10. Systems and Services (list host operating systems, 
software supported, peripherals, etc): All PCs use MS/DOS 
2.11. The following programs are used: WORDSTAR, SIDEKICK, 
LOTUS 1-2-3, and BITCOM. There is one HP LASERJET and three 
EPSON FX printers. There is a 50Mbyte hard disk in the 
Z-248. Using a modem, the communications software, and 
emulating a terminal, the PCs can access the Harvard Law 
School legal database for research and case references. 
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LARGE, GEOGRAPHICALLY CONCENTRATED ORGANIZATION 





1. Point of Contact: Capt Joe Smith, (606 joss. 

2. Organization and Mission: HQ AFCC, Scott AFB, IL 

62224; sets communications policy for the United States Air 
Force. Our goal is to connect the headquarters with a 
network enabling rapid transfer of information between 
deputates and within deputates. This network will not only 
Support internal traffic but will also support electronic 
mail with the rest of the base and over the DDN. We want to 
become a showcase for networks for the Air Force. 


3. Organizational Structure: see attached organizational 
Chawe. 


4. Physical Location: Bldg 70. 


5. Existing Computer Locations: There are 250 PCs and four 
mainframes. There are 75 PCs on the first floor, 100 on the 
second, and 75 on the third. The mainframes are located in 

a special equipment room in the basement. Capt Smith has a 

list of all computers by serial number and location. 


6. How often the equipment will be moved: There is usually 
some movement of personnel and directorates each year. 

About 25 people are involved in these relocations. Our long 
term goal is to add 250 PCs so every member of the 
headquarters has one on his desk. 


7. Security: We would like to evolve to a multilevel 
secure network as soon as the DDN can support secure 
Beats |p as Bea one 


8. Survivability/Reliability: The mainframes are ina 
hardened environment, but the rest of the building is not 
built to survive a direct attack (conventional or nuclear); 
ensure the wiring scheme protects the mainframes from EMP 
effects. The system should operate with 95% reliabilty 
between the hours of 06001830, M-F, and 0800-1300, Sat. 


9. Installation Considerations: Installation should oeeus 
in only one section of the building at a time. Installation 
in the command section and the DCS offices should occur at 
glnlicfiolie = 
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10. Systems and Services (list host operating systems, 
software supported, peripherals, etc): Most PCs use MS/DOS 
3.0; some use CPM. The following programs are used: 
WORDSTAR, SIDEKICK, LOTUS 1-2-3, PEACHTEXT, PEACHCALC, MS 
WORD, KERMIT, ACCESS. There are many types of printers at 
the headquarters (about 200). At least 75 printers are 
letter quality. There are also two HP plotters used for 
making overhead view-graphs. The mainframes are VAX 11/780s 


and use the DEC operating system. 
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LARGE, GEOGRAPHICALLY DISPERSED ORGANIZATION 


1. Point of Contact: Capt Sally Jones, (202) 555-7890 

2. Organization and Mission: 93rd Test and Evaluation 
Squadron, Bolling AFB, MD 21333; our squadron designs, and 
tests computer chips for DoD. We recommend policy to the 
Defense Communications Agency and evaluate recommendations 
made by other services and organizations. We also write 
technical manuals and test procedures for applications 
designed here and at Wright-Patterson AFB. We require a 
secure network to support this mission. 


3. Organizational Structure: see attached organizational 
Chaet. 


4. Physical Location: Bldgs 290-295, 14, 100, 110, and 
a 


5. Existing Computer Locations: See attached map and list. 


6. How often the equipment will be moved: Due to the 
secure nature of some of the work, movement is kept toa 
minimum and should not be part of the planning process. 


7. Security: We have a requirement for a multilevel secure 
network as soon as possible. 


8. Survivability/Reliability: Each building should be 
capable of operating its portion of the network alone. The 
network should be resistant to EMP effects. A reliability 
of 90% for the entire network and 95% for each building is 
required. 


9. Installation Considerations: Installation should occur 
in only one building at a time. Installation should outside 
normal duty hours (0715-1630, M-F), if possible. Escorts 
will be required for installation in bldgs 14 and 292. 


10. Systems and Services (list host operating systems, 
software supported, peripherals, etc): Most PCs use MS/DOS 
3.0; some use CPM. The following programs are used: 
WORDSTAR, MACPAINT, BORLAND’S CAD/CAE, MS WORD. There are 
many types of printers and plotters. Currently most are 
dedicated to a particular workstation/PC. 
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